/*
 * To change this template, choose Tools | Templates
 * and open the template in the editor.
 */
package Controller;

import DataAccess.DataAccessFacade;
import DomainModel.User;
import java.io.IOException;
import java.io.PrintWriter;
import java.util.HashMap;
import java.util.Map;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import org.jasypt.util.password.BasicPasswordEncryptor;

/**
 *
 * @author Team2
 */
public class LoginController extends HttpServlet {

    /**
     * Processes requests for both HTTP
     * <code>GET</code> and
     * <code>POST</code> methods.
     *
     * @param request servlet request
     * @param response servlet response
     * @throws ServletException if a servlet-specific error occurs
     * @throws IOException if an I/O error occurs
     */
    protected void processRequest(HttpServletRequest request, HttpServletResponse response)
            throws ServletException, IOException {
        response.setContentType("text/html;charset=UTF-8");
        PrintWriter out = response.getWriter();
    }

    // <editor-fold defaultstate="collapsed" desc="HttpServlet methods. Click on the + sign on the left to edit the code.">
    /**
     * Handles the HTTP
     * <code>GET</code> method.
     *
     * @param request servlet request
     * @param response servlet response
     * @throws ServletException if a servlet-specific error occurs
     * @throws IOException if an I/O error occurs
     */
    @Override
    protected void doGet(HttpServletRequest request, HttpServletResponse response)
            throws ServletException, IOException {
        request.getRequestDispatcher("login.jsp").forward(request, response);
    }

    /**
     * Handles the HTTP
     * <code>POST</code> method.
     *
     * @param request servlet request
     * @param response servlet response
     * @throws ServletException if a servlet-specific error occurs
     * @throws IOException if an I/O error occurs
     */
    @Override
    protected void doPost(HttpServletRequest request, HttpServletResponse response)
            throws ServletException, IOException {
        String actionLogin = request.getParameter("login");
        String actionLogout = request.getParameter("logout");
        
        if (actionLogin != null) {
            doLogin(request, response);
        }
        else if (actionLogout != null) {
            HttpSession session = request.getSession();
            session.setAttribute("currentUser", null);
            response.sendRedirect("login.jsp"); 
        }
    }
    
    private void doLogin(HttpServletRequest request, HttpServletResponse response)
            throws ServletException, IOException {
        // Prepare messages.
        Map<String, String> messages = new HashMap<>();
        request.setAttribute("messages", messages);

        String strUserName = request.getParameter("username");
        String strPassword = request.getParameter("password");
        String strErrMsg = null;
        User user = null;
        HttpSession session = request.getSession();

        try {

            user = DataAccessFacade.getInstance().loginUser(strUserName, strPassword);

           if (user != null) {
                session.setAttribute("currentUser", user);
            } else {
                strErrMsg = "User name or Password is invalid. Please try again.";
            }
        } catch (Exception e) {
            strErrMsg = "Unable to validate user / password in database";
        }
 
       if(user != null) {
           //User user = (User) session.getAttribute("currentUser");
           session.setAttribute("UserName", user.getFirstName() + " " + user.getLastName());
           
           response.sendRedirect(user.getRole().getDefaultPage());
//           if (user.getRole() == Role.ADMIN)
//               response.sendRedirect("grs/adminUsers");
//           else
//               response.sendRedirect("grs/home.jsp"); 
       }
       else {
           messages.put("error", strErrMsg);
           request.getRequestDispatcher("/login.jsp").forward(request, response);
       }
    }

    /**
     * Returns a short description of the servlet.
     *
     * @return a String containing servlet description
     */
    @Override
    public String getServletInfo() {
        return "Short description";
    }// </editor-fold>
}
